A web browser with dynamic data-flow tracking enabled in the Javascript engine and DOM, based on Mozilla Firefox (https://github.com/mozilla/gecko-dev). It can be used to identify insecure data flows or data privacy leaks in client-side web applications.
Running ./mach jstests shows some failing tests, i.e., where foxhound behavior diverges from vanilla Firefox.
This PR tracks the progress of fixing these issues. The underlying reason for test failures is that when assembling the taint flow we call String functions internally, which might have observable side effects iff the user overrides those functions.
Running
./mach jstestsshows some failing tests, i.e., where foxhound behavior diverges from vanilla Firefox.This PR tracks the progress of fixing these issues. The underlying reason for test failures is that when assembling the taint flow we call String functions internally, which might have observable side effects iff the user overrides those functions.